The Inner Circle

 View Only
Back to discussions
Expand all | Collapse all

Cybersecurity Maturity Model Certification C M M C A S S E S S M E N T P R O C E S S Version 2.0 December 2024

  • 1.  Cybersecurity Maturity Model Certification C M M C A S S E S S M E N T P R O C E S S Version 2.0 December 2024

    Posted Dec 16, 2024 11:12:00 AM
      |   view attached

    Hi All,

    The CMMC Assessment Process (CAP), is the official procedural guide for CMMC ThirdParty Assessment Organizations (C3PAOs) conducting a CMMC Level 2 certification assessment (herein also referred to as an "assessment") of an Organization Seeking Certification (OSC). The CAP is published and maintained by The Cyber AB and reviewed and approved by the CMMC PMO. It is intended as a resource for the entire CMMC Ecosystem, as well as for companies and organizations within the DIB. 

    The purpose of the CAP is to ensure the consistency and integrity of CMMC Level 2 certification assessments. Adherence to the CAP is required by C3PAOs and their CMMC Certified Assessors (CCAs) and is an element of the C3PAO Accreditation Scheme. The CAP is not to be confused with references to a generalized CMMC "assessment process" that appear in the Code of Federal Regulations (CFR), Title 32, part 170. 



    ------------------------------
    Michael Roza CPA, CISA, CIA, CC, CCSKv5, CCZTv1, MBA, EMBA, CSA
    ------------------------------

    Attachment(s)

    pdf
    DoD CMMC Assessment Process V2.0 202412.pdf   418 KB 1 version